Home
last modified time | relevance | path

Searched refs:security (Results 1 – 25 of 26) sorted by relevance

12

/php-src/
H A DSECURITY.md3 Please report security vulnerabilities on GitHub at:
4 <https://github.com/php/php-src/security/advisories/new>
7 somebody about a PHP security issue that might not be a bug report, please write
8 to <security@php.net>.
17 https://github.com/php/policies/blob/main/security-classification.rst
H A DCONTRIBUTING.md361 … release the PHP 8.1.x series. This is an old stable version and is open for security fixes only. |
379 1. All non-security bugfix changes should first go to the lowest bugfix branch
380 (i.e. 8.0) and then get merged up to all other branches. All security fixes
381 should go to the lowest security fixes branch (i.e 7.4). If a change is not
H A Dphp.ini-development76 ; php.ini-production contains settings which hold security, performance and
78 ; compatibility with older or less security-conscious applications. We
404 ; (e.g. by adding its signature to the Web server header). It is no security
764 ; see documentation for security issues. The alternate is to use the
790 ; cgi.force_redirect is necessary to provide security running PHP as a CGI under
804 ; cause security issues, KNOW WHAT YOU ARE DOING FIRST.
818 ; of the web tree and people will not be able to circumvent .htaccess security.
822 ; security tokens of the calling client. This allows IIS to define the
823 ; security context that the request runs under. mod_fastcgi under Apache
1414 ; Use of trans sid may risk your users' security.
[all …]
H A Dphp.ini-production76 ; php.ini-production contains settings which hold security, performance and
78 ; compatibility with older or less security-conscious applications. We
406 ; (e.g. by adding its signature to the Web server header). It is no security
766 ; see documentation for security issues. The alternate is to use the
792 ; cgi.force_redirect is necessary to provide security running PHP as a CGI under
806 ; cause security issues, KNOW WHAT YOU ARE DOING FIRST.
820 ; of the web tree and people will not be able to circumvent .htaccess security.
824 ; security tokens of the calling client. This allows IIS to define the
825 ; security context that the request runs under. mod_fastcgi under Apache
1416 ; Use of trans sid may risk your users' security.
[all …]
H A DREADME.REDIST.BINS176 as part of a software package, or anywhere else to improve security,
/php-src/Zend/tests/
H A Dbug77494.phpt15 Warning: CURLFile() has been disabled for security reasons in %sbug77494.php on line 2
20 Warning: ErrorException() has been disabled for security reasons in %s on line %d
H A Derrmsg_021.phpt16 Warning: test() has been disabled for security reasons in %s on line %d
/php-src/TSRM/
H A Dtsrm_win32.c451 SECURITY_ATTRIBUTES security; in popen_ex() local
501 security.nLength = sizeof(SECURITY_ATTRIBUTES); in popen_ex()
502 security.bInheritHandle = TRUE; in popen_ex()
503 security.lpSecurityDescriptor = NULL; in popen_ex()
505 if (!type_len || !CreatePipe(&in, &out, &security, 2048L)) { in popen_ex()
539 …DuplicateTokenEx(thread_token, MAXIMUM_ALLOWED, &security, SecurityImpersonation, TokenPrimary, &t… in popen_ex()
560 …res = CreateProcessAsUserW(token_user, NULL, cmdw, &security, &security, security.bInheritHandle, … in popen_ex()
563 …res = CreateProcessW(NULL, cmdw, &security, &security, security.bInheritHandle, dwCreateFlags, env… in popen_ex()
/php-src/docs-old/
H A Dinput-filter.md8 which a company-wide or site-wide security policy can be enforced. It is
10 functions. To implement your own security policy you will need to write a
13 implement your own security policy, read on.
/php-src/tests/basic/
H A Dbug55500.phpt2 Bug #55500 (Corrupted $_FILES indices lead to security concern)
/php-src/ext/openssl/tests/
H A Dbug65538_002.phpt22 Warning: remote cafile streams are disabled for security purposes in %s on line %d
H A Dstream_security_level.phpt25 // Make sure the server side starts up successfully if the default security level is
/php-src/ext/standard/tests/network/
H A Dnews.rss24 …evelopment team announces the immediate availability of PHP 5.4.37. Six security-related bugs were…
/php-src/ext/phar/
H A Dphar_internal.h589 …r_get_entry_info(phar_archive_data *phar, char *path, size_t path_len, char **error, int security);
590 …fo_dir(phar_archive_data *phar, char *path, size_t path_len, char dir, char **error, int security);
591 …me_len, char *path, size_t path_len, const char *mode, char allow_dir, char **error, int security);
592 …me_len, char *path, size_t path_len, const char *mode, char allow_dir, char **error, int security);
H A Dutil.c351 …har *path, size_t path_len, const char *mode, char allow_dir, char **error, int security) /* {{{ */ in phar_get_entry_data() argument
389 … allow_dir, for_create && !PHAR_G(readonly) && !phar->is_data ? NULL : error, security)) == NULL) { in phar_get_entry_data()
396 …, path_len, for_create && !PHAR_G(readonly) && !phar->is_data ? NULL : error, security)) == NULL) { in phar_get_entry_data()
511 …har *path, size_t path_len, const char *mode, char allow_dir, char **error, int security) /* {{{ */ in phar_get_or_create_entry_data() argument
529 …== phar_get_entry_data(&ret, fname, fname_len, path, path_len, mode, allow_dir, error, security)) { in phar_get_or_create_entry_data()
1199 …ry_info(phar_archive_data *phar, char *path, size_t path_len, char **error, int security) /* {{{ */ in phar_get_entry_info() argument
1201 return phar_get_entry_info_dir(phar, path, path_len, 0, error, security); in phar_get_entry_info()
1209 …ar_archive_data *phar, char *path, size_t path_len, char dir, char **error, int security) /* {{{ */ in phar_get_entry_info_dir() argument
1225 if (security && path_len >= sizeof(".phar")-1 && !memcmp(path, ".phar", sizeof(".phar")-1)) { in phar_get_entry_info_dir()
/php-src/ext/exif/tests/
H A Dbug50845.phpt46 …nd (LSD-41), May 5, 2016. The vehicles were loaded to support a theater security cooperation event…
/php-src/docs/
H A Drelease-process.md153 > security fixes before this version's GA.
362 there is a new release, and highlight the major changes (e.g., security
675 * Update the `tags` array to include `'security'` if this is a security release
681 ./bin/createReleaseEntry -v X.Y.Z -r # --security for security releases
772 > If it is a security release, we must note "This is a security release."
811 * `tags` array should include `security` if this is a security release
815 highlight the major important things (security fixes) and when it is
818 * Call `php bin/createReleaseEntry -v <version> [ --security ]` in your
937 provides security researchers with confidence they are using our most
946 [making changes to security.txt][security-txt].
[all …]
/php-src/ext/session/tests/user_session_module/
H A Dsave_handler.inc133 // security reasons for production save handler.
156 // NOTE: This handler is mandatory for session security.
/php-src/ext/snmp/tests/
H A Dsnmp-object.phpt97 echo "SNMPv3 (default security settings)\n";
211 SNMPv3 (default security settings)
/php-src/tests/security/
H A Dopen_basedir.inc14 // recommended for production use as . bypasses all semblances of security..!
/php-src/win32/build/
H A Dconfig.w32356 ARG_ENABLE("security-flags", "Disable the compiler security flags", "yes");
/php-src/sapi/fpm/
H A Dwww.conf.in358 ; As a security precaution, this setting will be ignored if:
416 ; Note: chrooting is a great security feature and should be used whenever
456 ;security.limit_extensions = .php .php3 .php4 .php5 .php7
/php-src/sapi/litespeed/
H A DREADME.md18 security when mod_php is used. Usually, FastCGI PHP is not an option in shared
/php-src/build/
H A Dlibtool.m42187 dnl not every word. This closes a longstanding sh security hole.
3734 # For security reasons, it is highly recommended that you always
/php-src/ext/fileinfo/tests/
H A Dmagic私はガラスを食べられます3778 # security version; 0~old 2~current
3780 >>9 ubyte !2 \b, security version %u
3801 # security envelope file position; MAYBE?
3802 #>0x18 ulelong !0 \b, at %#x security envelope
3805 # length in bytes of security envelope data like: 2CAh 301h 364h 471h
3806 >0x1E uleshort !0 \b, security envelope length %#x

Completed in 139 milliseconds

12